Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Anthropic
Anthropicadded 2026/03/29 8:43 p.m.4 views

ANT-2026-ZQ8AY22X · CraftCMS · privilege-escalation

privilege-escalation high GHSA-cc7p-2j3x-x7xf Severity Claude high · Security research firm - · Maintainer high Discovered by Claude Mythos Preview REPORT The report below was sent to the maintainer and sealed at approval. ANT-2026-ZQ8AY22X: Privilege Escalation/Bypass through...

6AI score
Exploits0
Snyk
Snykadded 2025/12/18 8:46 p.m.3 views

Cross-site Scripting (XSS)

Overview Kentico.Xperience.AspNetCore.WebApp is an assemblies and content items required to integrate Kentico Xperience into ASP.NET Core applications. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper processing of page preview URLs. An authenticated...

6.1CVSS5.3AI score0.00027EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/12/18 12:0 a.m.2 views

Kentico Xperience 跨站脚本漏洞

Kentico Xperience is a digital experience platform from Kentico. Kentico Xperience suffers from a cross-site scripting vulnerability that can be exploited by an attacker to execute arbitrary web script or HTML by injecting a crafted payload...

5.4CVSS5.9AI score0.00027EPSS
Exploits0References2
NVD
NVDadded 2024/04/10 2:15 p.m.9 views

CVE-2024-2730

Mautic uses predictable page indices for unpublished landing pages, their content can be accessed by unauthenticated users under public preview URLs which could expose sensitive data. At the time of publication of the CVE no patch is available...

5.3CVSS5.4AI score0.00316EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/04/10 12:0 a.m.1 views

Mautic 安全漏洞

Mautic is an open source marketing automation software. The software monitors and manages websites, sends emails and manages customer resources. Mautic suffers from a security vulnerability that stems from the use of predictable page indexing for unpublished landing pages, whose content can be...

5.3CVSS6.7AI score0.00316EPSS
Exploits0References2
OSV
OSVadded 2023/01/26 9:15 p.m.2 views

CVE-2021-36539

Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL canvadocsessionurl...

6.5CVSS5.8AI score
Exploits0References2
OSV
OSVadded 2022/05/24 5:39 p.m.1 views

GHSA-7QF3-C2Q8-69M3 Reflected XSS vulnerability in Jenkins markup formatter preview

Jenkins allows administrators to choose the markup formatter to use for descriptions of jobs, builds, views, etc. displayed in Jenkins. When editing such a description, users can choose to have Jenkins render a formatted preview of the description they entered. Jenkins 2.274 and earlier, LTS...

6.1CVSS6.1AI score0.00327EPSS
Exploits0References4
0day.today
0day.todayadded 2009/12/15 12:0 a.m.23 views

iGaming CMS v1.5 CSRF Vulnerability

Exploit for unknown platform in category web applications =================================== iGaming CMS v1.5 CSRF Vulnerability =================================== NeX of the HackTalk team has found a CSRF Vulnerability in iGaming CMS v 1.5 that allows an attacker to make new administrative...

7.1AI score
Exploits0
Rows per page
Query Builder